Internet Security Summary 0601
Internet Security Summary 0601
A vulnerability has been reported in XML-RPC for PHP, which can be
exploited by malicious people to compromise a vulnerable system.
Additional detail can be found in the advisory below.
Security researcher Ron van Daal has found a vulnerability in phpBB,
which can be exploited by malicious people to compromise a vulnerable
system.
A very similar vulnerability in phpBB was exploited by the "Santy"
worm last year.
Everyone using phpBB are advised to apply patches as soon as possible.
Several vulnerabilities have been reported in RealOne Player,
RealPlayer, Helix Player and Rhapsody, which can be exploited by
malicious people to overwrite local files or to compromise a user's
system.
The vendor has released patches, please review the referenced
advisory for details.
VIRUS ALERTS:
Secunia has not issued any virus alerts during the week.
3) This Weeks Top Ten Most Read Advisories:
1. [SA15489] Mozilla / Firefox / Camino Dialog Origin Spoofing
Vulnerability
2. [SA15491] Microsoft Internet Explorer Dialog Origin Spoofing
Vulnerability
3. [SA15488] Opera Dialog Origin Spoofing Vulnerability
4. [SA15474] Safari Dialog Origin Spoofing Vulnerability
5. [SA15806] RealOne / RealPlayer / Helix Player / Rhapsody Multiple
Vulnerabilities
6. [SA15601] Mozilla / Mozilla Firefox Frame Injection Vulnerability
7. [SA15411] Opera "javascript:" URL Cross-Site Scripting
Vulnerability
8. [SA15845] phpBB "highlight" PHP Code Execution Vulnerability
9. [SA15492] Internet Explorer for Mac Dialog Origin Spoofing
Vulnerability
10. [SA15827] Adobe Reader / Acrobat Two Vulnerabilities
4) Vulnerabilities Summary Listing
Windows:
[SA15837] ActiveBuyandSell Cross-Site Scripting and SQL Injection
[SA15832] Sukru Alatas Guestbook Exposure of User Credentials
[SA15818] Dynamic Biz Website Builder Admin Login SQL Injection
[SA15803] DUware DUclassmate SQL Injection Vulnerabilities
[SA15802] DUware DUforum SQL Injection Vulnerabilities
[SA15801] DUware DUpaypal Pro SQL Injection Vulnerabilities
[SA15800] DUware DUamazon Pro SQL Injection Vulnerabilities
[SA15847] Hosting Controller "error" Cross-Site Scripting
Vulnerability
[SA15838] IA eMailServer LIST Command Denial of Service Vulnerability
[SA15828] Inframail SMTP and FTP Denial of Service Vulnerabilities
[SA15819] NateOn Messenger Directory Listing Disclosure Vulnerability
UNIX/Linux:
[SA15839] SUSE update for realplayer
[SA15825] Fedora update for HelixPlayer
[SA15814] Red Hat update for realplayer/helixplayer
[SA15813] Sun Solaris GNOME libgdk_pixbuf Image Handling
Vulnerabilities
[SA15856] Ubuntu update for ruby
[SA15854] Plans "evt_id" SQL Injection Vulnerability
[SA15848] Mandriva update for imagemagick
[SA15827] Adobe Reader / Acrobat Two Vulnerabilities
[SA15858] Gentoo update for heimdal
[SA15849] Mandriva update for spamassassin
[SA15835] Clam AntiVirus clamav-milter Database Update Denial of
Service
[SA15824] Fedora update for gedit
[SA15823] Gentoo update for clamav
[SA15820] Trustix update for multiple packages
[SA15817] Red Hat update for spamassassin
[SA15815] Red Hat update for FreeRADIUS
[SA15811] ClamAV Quantum Decompressor Denial of Service Vulnerability
[SA15804] SUSE update for razor-agents
[SA15799] SGI Advanced Linux Environment Multiple Updates
[SA15834] Mandriva update for squid
[SA15809] Sun Solaris Samba Wildcard Filename Matching Denial of
Service
[SA15844] Ubuntu update for dbus
[SA15841] Sun Solaris Runtime Linker Privilege Escalation
Vulnerability
[SA15836] Fedora update for kernel
[SA15833] Mandriva update for dbus
[SA15807] SUSE update for sudo
[SA15822] Ubuntu update for kernel
[SA15812] Linux Kernel "syscall()" Argument Handling Denial of Service
Other:
[SA15851] Blue Coat Products TCP Timestamp Denial of Service
[SA15826] Nortel Communication Server FTP Service Denial of Service
[SA15853] Dominion SX Insecure File Permission Security Issues
Cross Platform:
[SA15855] PostNuke XML-RPC Library PHP Code Execution Vulnerability
[SA15852] XML-RPC for PHP Unspecified PHP Code Execution Vulnerability
[SA15845] phpBB "highlight" PHP Code Execution Vulnerability
[SA15842] CSV_DB / i_DB Arbitrary Command Execution Vulnerability
[SA15806] RealOne / RealPlayer / Helix Player / Rhapsody Multiple
Vulnerabilities
[SA15830] PHP-Fusion Two Vulnerabilities
[SA15829] PHP-Nuke "off-site Avatar" Script Insertion Vulnerability
[SA15805] UBB.threads Multiple Vulnerabilities
[SA15808] IBM DB2 Universal Data Authorisation Checking Bypass
5) Vulnerabilities Content Listing
Windows:
[SA15837] ActiveBuyandSell Cross-Site Scripting and SQL Injection
Critical: Moderately critical
Where: From remote
Impact: Cross Site Scripting, Manipulation of data
